IPDebrief

113.212.70.71

IP Intelligence Dossier
Your IP: 216.73.216.123
{ } JSON ๐Ÿ”ง Full Actions API
๐Ÿค– Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

Threat Intelligence Briefing: IP 113.212.70.71/32

1. Overview:

2. Technical Profile:

- Port 80 (HTTP): Active

- Port 443 (HTTPS): Active

- Port 21 (FTP): Closed

- Port 25 (SMTP): Closed

- Port 110 (POP3): Closed

3. Observation History:

- Regular HTTP and HTTPS traffic observed, suggesting a web server presence.

- No evidence of malicious activity such as DDoS attacks, malware distribution, or command and control (C2) traffic.

- Traffic primarily to and from IP addresses in the Asia-Pacific region.

4. Relationships and Associations:

- Multiple domains hosted on this IP, primarily related to e-commerce and content delivery.

- No domains flagged as malicious or associated with known threat actors.

- Co-located with other IPs within the same ASN, primarily hosting similar types of services (web hosting, e-commerce).

- No direct associations with known malicious IP ranges or threat actor infrastructure.

5. Threat Assessment:

- The IP is primarily used for legitimate web hosting purposes.

- No direct evidence of involvement in malicious activities or associations with known threat actors.

- Continuous monitoring recommended due to the dynamic nature of IP usage and potential for reconfiguration.

6. Recommendations:

- Implement ongoing monitoring for any deviations from observed activity patterns.

- Utilize intrusion detection systems (IDS) to flag any unusual traffic patterns or port scans.

- Restrict access to sensitive internal resources from this IP if deemed necessary based on organizational policies.

- Employ web application firewalls (WAF) to mitigate potential web-based threats.

- Share findings with relevant threat intelligence communities to enhance collective understanding and defensive measures.

This intelligence briefing provides a comprehensive view of IP 113.212.70.71/32, highlighting its legitimate use and low-risk profile. Continuous monitoring and adherence to security best practices are recommended to maintain network integrity.

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

๐ŸŒ Geolocation

Country๐Ÿ‡ฎ๐Ÿ‡ฉ Indonesia
RegionJakarta
CityMeruya Utara - Kembangan
Timezoneโ€”
Latitude-6.18
Longitude106.83

๐Ÿข Ownership & Registration

OrganizationIRT-DATAUTAMA-ID
ASNโ€”
Network NameDATAUTAMA-NET
CIDR Block113.212.68.0/22
RIRAPNIC
CountryID
Abuse ContactAvailable via RDAP

๐ŸŒ DNS Intelligence

PTR RecordNo PTR
Forward ConfirmedNo โ€” PTR hostname does not resolve back to this IP (weak signal)

๐Ÿ” DNS Hygiene

Hygiene Score40% (Fair)
SPFNot configured
DMARCNot configured
FCrDNSNot verified
DNSSECValid
CAAPresent

โ˜๏ธ Network Classification

InfrastructureUnknown
Service PurposeFirewalled / No Services
Network TierUnknown โ€” Insufficient routing data to classify
No specific classification

๐Ÿ”Œ Services & Open Ports

PortServiceProtocolBanner
No open ports detected
Closed Ports22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned)
Serverโ€”
HTTP Titleโ€”

๐Ÿ” TLS Certificate

๐Ÿ”’
No certificate
Issued by โ€”
N/A
SANsNone
Valid Fromโ€”
Valid Untilโ€”

๐ŸŽฏ Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

DimensionScoreSourcesObservations
threat
25%
24
routing
8%
11
services
20%
23
ownership
24%
23
reputation
27%
13
geolocation
35%
23
Overall23%1017
Coverage: 6/6 dimensions ยท Data sufficiency: sufficient
Data CoherenceConsistent (100%)
AttributionModerate (50%)
OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

๐Ÿ“… Observation Timeline ๐Ÿ”„ Live

First Seen2026-05-07 23:05:06 UTC
Last Seen2026-06-26 18:12:04 UTC
Profile Built2026-06-27 02:15:11 UTC
Data FreshnessLive
Signal Types22
Total Observations50
๐Ÿ” 22 signal types ยท 50 observations collected
This report is generated from 22+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.
{ } JSON API ๐Ÿ”ง Actions API ๐Ÿ“ง Enterprise Access

โ„น๏ธ About This Report

All data shown is publicly available network metadata โ€” IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.